2.79. ZONEDEFENSE

Home Prev	cOS Core 15.00.01 Log Reference Guide

2.79. ZONEDEFENSE

These log messages refer to the ZONEDEFENSE (ZoneDefense events) category.

2.79.1. unable_to_allocate_send_entries (ID: 03800001)

Default Severity: WARNING
Log Message: Unable to allocate send entry. Sending of request to <switch> abandoned.
Explanation: Unable to allocate send entry. Unit is low on RAM.
Firewall Action: no_msg_sent
Recommended Action: Review the configuration in order to free more RAM.
Revision: 1
Parameters: switch

2.79.2. unable_to_allocate_exclude_entry (ID: 03800002)

Default Severity: WARNING
Log Message: Unable to allocate exclude entry for <host>.
Explanation: Unable to allocate exclude entry. Unit is low on memory.
Firewall Action: no_exclude
Recommended Action: Review the configuration in order to free more RAM.
Revision: 1
Parameters: host

2.79.3. unable_to_allocate_block_entry (ID: 03800003)

Default Severity: WARNING
Log Message: Unable to allocate block entry. Host <host> remains unblocked.
Explanation: Unable to allocate block entry. Unit is low on memory.
Firewall Action: no_block
Recommended Action: Review the configuration in order to free more RAM.
Revision: 1
Parameters: host

2.79.4. switch_out_of_ip_profiles (ID: 03800004)

Default Severity: WARNING
Log Message: Unable to accommodate block request since out of IP profiles on <switch>.
Explanation: There are no free IP profiles left on the switch. No more hosts can be be blocked/excluded on this switch.
Firewall Action: no_block
Recommended Action: Check if it is possible to unblock some hosts.
Revision: 1
Parameters: switch

2.79.5. out_of_mac_profiles (ID: 03800005)

Default Severity: WARNING
Log Message: Unable to accommodate block request since out of MAC profiles on <switch>.
Explanation: There are no free MAC profiles left on the switch. No more hosts can be be blocked/excluded on this switch.
Firewall Action: no_block
Recommended Action: None
Revision: 1
Parameters: switch

2.79.6. failed_to_create_profile (ID: 03800006)

Default Severity: CRITICAL
Log Message: Failed to create <type> profile <profile> on <switch>.
Explanation: The switch returned an error while creating a profile on the switch.
Firewall Action: no_profile
Recommended Action: Verify that the configured switch model is correct.
Revision: 1
Parameters: type
profile
switch

2.79.7. no_response_trying_to_create_rule (ID: 03800007)

Default Severity: CRITICAL
Log Message: No response from switch <switch> while trying to create <type> rule in profile <profile>.
Explanation: Several attempts to create a rule in the switch has timed out. No more attempts will be made.
Firewall Action: no_rule
Recommended Action: Verify that the firewall is able to communicate with the switch.
Revision: 1
Parameters: type
profile
switch

2.79.8. failed_writing_zonededense_state_to_media (ID: 03800008)

Default Severity: CRITICAL
Log Message: Failed to write ZoneDefense state to media.
Explanation: Failed to write list of ZoneDefense state to media. The media might be corrupt.
Firewall Action: None
Recommended Action: Verify that the media is intact.
Revision: 1

2.79.9. failed_to_create_access_rule (ID: 03800009)

Default Severity: CRITICAL
Log Message: Failed to create <ruletype> access rule to add <network> on <switch>.
Explanation: The switch returned an error while creating a rule.
Firewall Action: None
Recommended Action: Verify that the configured switch model is correct.
Revision: 1
Parameters: ruletype
network
switch

2.79.10. no_response_trying_to_erase_profile (ID: 03800010)

Default Severity: CRITICAL
Log Message: No response from switch <switch> while trying to erase <type> profile <profile>.
Explanation: Several attempts to erase a profile in the switch has timed out. No more attempts will be made.
Firewall Action: None
Recommended Action: Verify that the firewall is able to communicate with the switch.
Revision: 1
Parameters: type
profile
switch

2.79.11. failed_to_erase_profile (ID: 03800011)

Default Severity: CRITICAL
Log Message: Failed to erase <type> profile <profile> on <switch>.
Explanation: The switch returned an error while erasing a profile.
Firewall Action: None
Recommended Action: Verify that the configured switch model is correct.
Revision: 1
Parameters: type
profile
switch

2.79.12. failed_to_save_configuration (ID: 03800012)

Default Severity: CRITICAL
Log Message: Failed to save configuration on <switch>.
Explanation: The switch returned an error while saving the configuration.
Firewall Action: None
Recommended Action: Verify that the configured switch model is correct.
Revision: 1
Parameters: switch

2.79.13. timeout_saving_configuration (ID: 03800013)

Default Severity: CRITICAL
Log Message: Timeout to save configuration on <switch>.
Explanation: Several attempts to save the configuration in the switch has timed out. No more attempts will be made.
Firewall Action: None
Recommended Action: Verify that the firewall is able to communicate with the switch.
Revision: 1
Parameters: switch

2.79.14. zd_block (ID: 03800014)

Default Severity: WARNING
Log Message: ZoneDefense blocking host <host>. Alert Type: <type>.
Explanation: A configured action of type [type] has triggered ZoneDefense to block the host [host] at the configured ZoneDefense switches.
Firewall Action: block
Recommended Action: Unblock the specified host using the ZoneDefense status page to allow the host to regain access to the network.
Revision: 1
Parameters: type
host

2.79.15. mac_address_blocking_not_supported (ID: 03800015)

Default Severity: WARNING
Log Message: Unable to accommodate block request since MAC address blocking is not supported.
Explanation: This switch implements universal MIB that does not support MAC address blocking.
Firewall Action: no_block
Recommended Action: None
Revision: 1
Parameters: switch
mac

2.79.16. zonedefense_table_exhausted (ID: 03800016)

Default Severity: WARNING
Log Message: Unable to accommodate block request since free space in Zone Defense table is exhausted.
Explanation: Number of free row in Zone Defense table is 0. Can not block more hosts.
Firewall Action: no_block
Recommended Action: Unblocking of the host can make a room in Zone Defense table.
Revision: 1
Parameters: switch

2.79.17. zonedefense_disabled (ID: 03800017)

Default Severity: WARNING
Log Message: ZoneDefense is disabled on <switch>. The system will try to enable it.
Explanation: The switch responded that it has the ZoneDefense feature disabled. System will try once to enable it.
Firewall Action: enabling_zonedefense
Recommended Action: None
Revision: 1
Parameters: switch

2.79.18. zonedefense_enabled (ID: 03800018)

Default Severity: NOTICE
Log Message: ZoneDefense has been successfully enabled on <switch>.
Explanation: The system has successfully enabled ZoneDefense on the switch. No manual action is needed.
Firewall Action: getting_acl_number
Recommended Action: None
Revision: 1
Parameters: switch

2.79.19. enabling_zonedefense_failed (ID: 03800019)

Default Severity: CRITICAL
Log Message: ZoneDefense has failed to be enabled on <switch>.
Explanation: An attempt to automatically enable the ZoneDefense feaure has been made but failed. No further attempts will be made.
Firewall Action: None
Recommended Action: Enable the ZoneDefense feature on the switch manually.
Revision: 1
Parameters: switch

2.79.20. zd_unblock (ID: 03800911)

Default Severity: INFORMATIONAL
Log Message: ZoneDefense unblocking <unblock_type> blocked host <host>.
Explanation: A dynamically blocked host has been unblocked by ZoneDefense.
Firewall Action: unblock
Recommended Action: None
Revision: 1
Parameters: host
type
unblock_type

2.79.21. zd_unblock (ID: 03800912)

Default Severity: WARNING
Log Message: ZoneDefense failed to unblock <unblock_type> blocked host <host>.
Explanation: A dynamically blocked host could not be unblocked by ZoneDefense.
Firewall Action: unblock
Recommended Action: None
Revision: 1
Parameters: host
type
unblock_type

Home Prev